We have been informed to migrate from LDAP to LDAPS. Hence we are changing the configuration from ldap to ldaps in hue and hive as already we have SSL/TLS enabled, But I do have one question in hdfs configuration it as set hadoop.rpc.protection = authentication. So we thought of making changes to this as well by changing it from authentication to privacy.
What is the suggestion regarding this, is it the best practice what we are planning to do or should we keep the same as authentication. Is there any impact after the change.
The below property would be required if you would like to set RPC encryption:
hadoop.rpc.protection = privacy
authentication : authentication only (default); integrity : integrity check in addition to authentication; privacy : data encryption in addition to integrity
RPC encryption :The most common way for a client to interact with a Hadoop cluster is through RPC. A client connects to a NameNode (NN) over RPC protocol to read or write a file. RPC connections in Hadoop use Java’s Simple Authentication & Security Layer (SASL) which supports encryption. When hadoop.rpc.protection property is set to 'privacy' the data over RPC is encrypted with symmetric keys.